Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 14:36:28 UTC

Dark Web Monitoring

12
Total Findings
2
Action Required
2
Investigating
4
Monitoring
3
Credential Leaks
25
Monitored Emails
6
Monitored Domains
120
Searches (Month)
Last search: 2026-05-27 12:45 Next search: 2026-05-27 18:07
12 findings
Credentials (3) Domain Mentions (2) Data Exposures (3) Impersonation (2)
DW-0009 Medium Domain Mention
Investigating

acmelegal.co.uk listed in target reconnaissance dump

Domain appeared in automated reconnaissance output posted to paste site. Includes subdomain enumeration and port scan results.

Breach Forum Monitoring Discovered: 2026-05-26 Updated: 2026-05-28 James Okonkwo
DW-0012 High Data Exposure
Investigating

Client list excerpt found on file-sharing forum

Partial client list (47 names) found on underground forum. Appears to be from 2024 CRM export. Investigation ongoing to determine source.

Domain Watch Service Discovered: 2026-05-15 Updated: 2026-05-20 James Okonkwo
DW-0005 Critical Credential Leak
Action Required

Password for k.brown@acmelegal.co.uk found in stealer log

Credentials harvested by Raccoon Stealer from infected home device. Includes browser-saved passwords, cookies, and session tokens.

Dark Web Marketplace Crawler Discovered: 2026-05-05 Updated: 2026-05-10 Marcus Webb
DW-0007 Medium Data Exposure
Monitoring

Company email addresses found in marketing data broker database

7 corporate email addresses found in B2B data broker listing. No passwords, but increases targeted phishing risk.

Telegram Channel Monitor Discovered: 2026-05-05 Updated: 2026-05-07 Sarah Chen
DW-0002 High Credential Leak
Action Required

Email s.jones@acmelegal.co.uk in combo list on Telegram channel

Credential found in aggregated combo list (2.3M records). Password appears to be plaintext. Source: Telegram paste group.

Breach Forum Monitoring Discovered: 2026-04-30 Updated: 2026-05-03 Marcus Webb
DW-0003 High Domain Mention
Monitoring

acmelegal.co.uk referenced in threat actor forum discussion

Domain mentioned in Russian-language forum by user "kr4ken_0x" discussing UK law firm targets. No specific attack plans identified yet.

Domain Watch Service Discovered: 2026-04-30 Updated: 2026-05-02 Emma Richardson
DW-0001 Critical Credential Leak
Action Required

Credentials matching j.smith@acmelegal.co.uk found on breach forum

Credential leaked in third-party breach (LegalDocs Pro). Password hash (bcrypt) exposed. Account pre-dates MFA enforcement.

Dark Web Marketplace Crawler Discovered: 2026-04-29 Updated: 2026-05-02 James Okonkwo
DW-0004 Medium Data Exposure
Investigating

Internal document metadata containing employee names found on paste site

PDF metadata from 3 documents leaked to Pastebin. Contains author names and internal file paths. Documents appear to be older case files.

Domain Watch Service Discovered: 2026-04-28 Updated: 2026-04-29 Marcus Webb
DW-0011 Medium Brand Impersonation
Takedown Requested

Fake LinkedIn profile impersonating HR director

Fraudulent LinkedIn profile using company name and HR director photo. Used to solicit CVs/personal data from job seekers.

Paste Site Scanner Discovered: 2026-04-28 Updated: 2026-05-02 Sarah Chen
DW-0010 Low Executive Exposure
Monitoring

CEO personal email found in data breach (unrelated service)

Personal Gmail of CEO found in fitness app breach. No corporate credentials exposed but increases social engineering risk.

Breach Forum Monitoring Discovered: 2026-04-22 Updated: 2026-04-24 Marcus Webb
DW-0006 High Brand Impersonation
Takedown Requested

Phishing domain acme-legal-login.com registered on Namecheap

Look-alike domain registered 3 days ago. DNS points to known phishing infrastructure. Takedown request submitted to registrar.

Breach Forum Monitoring Discovered: 2026-04-19 Updated: 2026-04-21 Marcus Webb
DW-0008 High Credential Leak
Resolved

Legacy VPN credentials on dark web marketplace

Old VPN credentials for user a.wilson found on Genesis Market successor. Credentials are for deprecated VPN that has been decommissioned.

Stealer Log Analysis Discovered: 2026-04-19 Updated: 2026-04-19 James Okonkwo

Findings by Type

Findings by Status

Monitoring Coverage

Email Addresses
25 monitored
Domains
6 monitored
Executive Names
5 monitored
Brand Keywords
8 monitored
IP Ranges
3 monitored
Data Sources
47 active feeds